--- a/mozilla-xulrunner192/mozilla-xulrunner192.changes Fri Aug 12 12:07:31 2011 +0200
+++ b/mozilla-xulrunner192/mozilla-xulrunner192.changes Wed Aug 17 23:17:42 2011 +0200
@@ -1,9 +1,20 @@
-------------------------------------------------------------------
Fri Aug 5 09:35:34 UTC 2011 - wr@rosenauer.org
-- security update to 1.9.2.20 (bnc#711954)
- * fixed issues
- https://www.mozilla.org/security/known-vulnerabilities/firefox36.html
+- security update to 1.9.2.20 (bnc#712224)
+ fixed security issues MFSA 2011-30
+ * CVE-2011-2982
+ Miscellaneous memory safety hazards
+ * CVE-2011-0084 (bmo#648094)
+ Crash in SVGTextElement.getCharNumAtPosition()
+ * CVE-2011-2981
+ Privilege escalation using event handlers
+ * CVE-2011-2378 (bmo#572129)
+ Privilege escalation dropping a tab element in content area
+ * CVE-2011-2980 (bmo#642469)
+ Binary planting vulnerability in ThinkPadSensor::Startup
+ * CVE-2011-2983 (bmo#626297)
+ Private data leakage using RegExp.input
- added mozilla-implicit-declarations.patch to fix rpmlint/gcc
checks
- added mozilla-curl.patch to remove obsolete header dependency